[keycloak-user] Is there a REST Admin API to initiate the Reset Password flow?
Lohitha Chiranjeewa
kalc04 at gmail.com
Mon Feb 1 13:00:28 EST 2016
Hi Stian,
I was referring to a potential API endpoint which actually sends out the
password reset email (there's a similar API which sends out the
registration email), not the existing one which just resets the password.
Regards,
Lohitha.
On Mon, Feb 1, 2016 at 3:53 PM, Stian Thorgersen <sthorger at redhat.com>
wrote:
>
>
> On 28 January 2016 at 08:41, Lohitha Chiranjeewa <kalc04 at gmail.com> wrote:
>
>> Thanks Fabricio, will check on how we can proceed with such an
>> implementation.
>>
>> Since there is an already existing registration-email API, I thought it's
>> consistent from Keycloak's perspective to expose a reset-password API as
>> well...
>>
>
> Not sure what you refer to, but there are no APIs for these actions
> outside of the admin endpoints.
>
>
>>
>>
>> Regards,
>> Lohitha.
>>
>> On Thu, Jan 28, 2016 at 2:31 AM, Fabricio Milone <
>> fabricio.milone at shinetech.com> wrote:
>>
>>> Hi Lohitha,
>>>
>>> I had the same requirements (Direct grant + forgotten password) and
>>> ended up implementing a SPI using some piece of code made by Pedro Igor.
>>>
>>> An extract of the DEV Mailing list called: "*Add custom REST paths? New
>>> SPI?*"
>>>
>>> *It is part of a working in progress around fine-grained authorization
>>>> [1].*
>>>> *The new SPI changes [2] specific to Keycloak are located in a specific
>>>> branch [3] in my Keycloak fork.*
>>>
>>>
>>>> *I need to discuss these changes with Bill and see what he thinks about
>>>> it. Depending on his feedback, I can prepare a PR and send these changes to
>>>> upstream.*
>>>
>>>
>>>>
>>>> *[1] https://github.com/pedroigor/keycloak-authz
>>>> <https://github.com/pedroigor/keycloak-authz>*
>>>> *[2]
>>>> https://github.com/pedroigor/keycloak/commit/5e99614aacb70f7840a5ae25cfeaf3fc9d74ac54
>>>> <https://github.com/pedroigor/keycloak/commit/5e99614aacb70f7840a5ae25cfeaf3fc9d74ac54>**[3]
>>>> https://github.com/pedroigor/keycloak/tree/keycloak-authz-modified
>>>> <https://github.com/pedroigor/keycloak/tree/keycloak-authz-modified>*
>>>
>>>
>>>
>>> Not sure if Keycloak will ever adopt those changes as official or
>>> something similar though.
>>>
>>> That's a good starting point.
>>>
>>> Regards
>>>
>>> On 27 January 2016 at 21:19, Stian Thorgersen <sthorger at redhat.com>
>>> wrote:
>>>
>>>> There is in the admin endpoints, but nothing that's available to
>>>> end-users.
>>>>
>>>> On 22 January 2016 at 06:45, Lohitha Chiranjeewa <kalc04 at gmail.com>
>>>> wrote:
>>>>
>>>>> Hi,
>>>>>
>>>>> There are a few clients of ours who use the Direct Grants API to
>>>>> authenticate their users. A requirement has come up to provide the Reset
>>>>> Password flow to those clients. From what I've checked and gathered,
>>>>> there's no REST API to initiate this flow (sending the Keycloak password
>>>>> reset email + resetting the password through the UI); only way to do is
>>>>> through the browser.
>>>>>
>>>>> If it's actually there somewhere, can someone point me to it?
>>>>>
>>>>>
>>>>> Regards,
>>>>> Lohitha.
>>>>>
>>>>> _______________________________________________
>>>>> keycloak-user mailing list
>>>>> keycloak-user at lists.jboss.org
>>>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>>>
>>>>
>>>>
>>>> _______________________________________________
>>>> keycloak-user mailing list
>>>> keycloak-user at lists.jboss.org
>>>> https://lists.jboss.org/mailman/listinfo/keycloak-user
>>>>
>>>
>>>
>>>
>>> --
>>> *Fabricio Milone*
>>> Developer
>>>
>>> *Shine Consulting *
>>>
>>> 30/600 Bourke Street
>>>
>>> Melbourne VIC 3000
>>>
>>> T: 03 8488 9939
>>>
>>> M: 04 3200 4006
>>>
>>>
>>> www.shinetech.com *a* passion for excellence
>>>
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160201/7ec0844f/attachment-0001.html
More information about the keycloak-user
mailing list